Skip to content

VIVID

  • https://github.com/MatheuZSecurity/Koth-TryHackMe-Tricks/blob/master/README.md
  • https://github.com/najeh-halawani/tryhackme-koth
  • https://github.com/sakshm-aurora/koth_tricks
  • https://gtfobins.github.io/
  • https://tex2e.github.io/reverse-shell-generator/index.html

KOTH

#!/bin/bash

## https://www.youtube.com/MatheuZSecurity

echo "Finding flags... Please leave this script running in a terminal as this will take a long time."

find / -name "*flag.txt" -o -name ".flag*" -exec cat {} \; 2>/dev/null > temp_flags.txt

find / -name "*.txt" -o -name ".flag*" -exec cat {} \; 2>/dev/null > flags.txt

find / -name ".flag" -o -name "flag" -exec cat {} \; 2>/dev/null >> temp_flags.txt

find / -name "user.txt" -exec cat {} \; 2>/dev/null >> temp_flags.txt

grep -r "THM{" / >> temp_flags.txt 2>/dev/null

if [[ -s temp_flags.txt ]]; then
    echo "All flags Found"
else
    echo "No flags found"
fi

sleep 2

clear

echo "Here is your flags."

cat temp_flags.txt

Steps

> nmap -sC -sV -A -p-
> fcrackzip rockyou.txt
> find / -type f -perm 4000 2>/dev/null # FIND SUID Binaries
>